Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ju1V_rdoJq5pITDNCmH62uJi4-U.roa
File: ju1V_rdoJq5pITDNCmH62uJi4-U.roa (raw, json)
Hash identifier: w54ZxTX4siRlXOQlsbNA0zDcOQtEsuMq24hHjsQAhZY=
Subject key identifier: 8E:ED:55:FE:B7:68:26:AE:69:21:30:CD:0A:61:FA:DA:E2:62:E3:E5
Certificate issuer: /CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Certificate serial: 01885260A34ED4ADFAF3B6025B21A218840B
Authority key identifier: D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ju1V_rdoJq5pITDNCmH62uJi4-U.roa
Signing time: Thu 25 May 2023 10:07:24 +0000
ROA not before: Thu 25 May 2023 10:07:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208809
IP address blocks: 2a0e:8f02:f05d::/48 maxlen: 48
Validation: Failed, certificate revoked on Tue 02 Jan 2024 12:32:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:52:60:a3:4e:d4:ad:fa:f3:b6:02:5b:21:a2:18:84:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d56ef48ed6155dd7843eed3632469abaa3100bf3
Validity
Not Before: May 25 10:07:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8eed55feb76826ae692130cd0a61fadae262e3e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8d:00:9c:fb:47:53:d1:b6:06:3a:dd:4e:61:
33:5e:20:82:04:18:10:d3:2b:ec:0c:0d:1b:84:96:
25:15:46:81:44:0d:58:f3:df:6e:fb:36:6f:01:96:
65:69:65:18:72:de:b0:76:8f:80:c5:39:7d:e6:e1:
62:5d:52:2a:67:6a:04:44:ea:58:e4:0a:c2:58:7d:
ee:7f:a3:bf:ba:89:a6:26:1f:3f:23:a7:83:02:b4:
ba:49:a8:e4:cf:de:bc:e2:01:55:39:6e:c9:57:d9:
43:61:ef:1a:32:7f:b2:fb:39:48:c8:81:91:e7:96:
5b:aa:ce:9f:ac:e7:b5:41:b3:a1:f1:da:e3:ce:af:
c5:64:8b:b6:54:b5:b3:6c:b7:33:19:27:4a:c4:75:
73:1d:19:5e:50:a9:88:08:a6:1d:95:54:9e:62:cd:
c4:3c:ab:5e:eb:ad:cb:3a:8e:b4:16:62:bc:3f:e6:
ad:0e:3f:4b:02:51:aa:63:8f:9b:d6:62:dd:0f:ec:
ad:5f:15:dd:3a:86:17:ef:fc:db:25:75:5b:76:4b:
9c:05:65:64:df:c7:cd:8b:1e:d8:50:9b:93:8e:a1:
92:05:ce:b3:9c:38:71:11:e2:e6:05:04:42:de:be:
b2:f7:78:61:b7:e7:66:aa:fc:d6:0d:9b:0b:ad:48:
79:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:ED:55:FE:B7:68:26:AE:69:21:30:CD:0A:61:FA:DA:E2:62:E3:E5
X509v3 Authority Key Identifier:
keyid:D5:6E:F4:8E:D6:15:5D:D7:84:3E:ED:36:32:46:9A:BA:A3:10:0B:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1W70jtYVXdeEPu02MkaauqMQC_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/ju1V_rdoJq5pITDNCmH62uJi4-U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/58ff54-3410-4e42-aab8-d2d7f2bb64df/1/1W70jtYVXdeEPu02MkaauqMQC_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a0e:8f02:f05d::/48
Signature Algorithm: sha256WithRSAEncryption
35:dc:52:00:9b:bb:f6:6e:50:32:1f:77:a2:a5:6b:ef:43:7e:
83:5f:43:4e:00:f0:71:90:52:c3:9b:83:0f:00:83:04:7a:38:
b8:61:d5:8d:d4:f6:ab:c7:f9:ab:e0:ed:44:3c:98:5a:17:b6:
56:69:96:f3:38:4b:57:8b:03:3a:c7:85:3c:4c:22:ef:b6:2e:
8b:cc:52:26:eb:c8:af:03:9b:3d:d3:38:dc:cb:11:24:44:92:
f3:10:e5:07:bc:1f:6f:35:82:57:7e:e4:36:90:12:6b:72:33:
75:08:9d:8c:d7:bf:ac:21:1f:22:37:8c:bf:fd:bd:fa:3a:16:
b9:1f:57:68:13:8c:b0:72:cc:fd:27:9f:e0:df:28:32:ff:21:
05:c0:3c:cf:59:9e:b6:8e:d8:21:61:d5:b9:45:48:9f:e3:81:
10:b3:84:e6:e2:93:43:58:27:bd:0d:42:31:0c:1c:d2:69:63:
8f:53:da:90:68:36:be:cc:32:b4:01:a9:1f:2a:57:9d:e1:84:
8e:34:0e:f6:e6:7f:75:51:7f:10:43:2e:d7:a8:9b:77:6e:11:
3c:b8:72:4a:1a:a6:35:1c:b6:00:77:48:aa:73:5c:74:65:33:
4c:8e:d7:cf:5b:a3:78:f4:b4:26:e8:8a:a9:7e:8f:d9:a3:8b:
0f:78:a9:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:41 2024 by rpki-client on console-fra.rpki-client.org